From owner-freebsd-arch  Mon Jun 19  9:48:31 2000
Delivered-To: freebsd-arch@freebsd.org
Received: from spirit.jaded.net (shortbus.jaded.net [216.94.132.8])
	by hub.freebsd.org (Postfix) with ESMTP
	id 1C44737BCC2; Mon, 19 Jun 2000 09:48:27 -0700 (PDT)
	(envelope-from dan@spirit.jaded.net)
Received: (from dan@localhost)
	by spirit.jaded.net (8.9.3/8.9.3) id MAA02315;
	Mon, 19 Jun 2000 12:45:47 -0400 (EDT)
	(envelope-from dan)
Date: Mon, 19 Jun 2000 12:45:46 -0400
From: Dan Moschuk <dan@FreeBSD.ORG>
To: Poul-Henning Kamp <phk@critter.freebsd.dk>
Cc: Dag-Erling Smorgrav <des@flood.ping.uio.no>,
	Dan Moschuk <dan@FreeBSD.ORG>,
	"Jeroen C. van Gelderen" <jeroen@vangelderen.org>,
	Mark Murray <mark@grondar.za>, arch@FreeBSD.ORG
Subject: Re: (2nd iteration) New /dev/(random|null|zero) - review, please
Message-ID: <20000619124546.A2268@spirit.jaded.net>
References: <xzpsnu9u5yz.fsf@flood.ping.uio.no> <44778.961423462@critter.freebsd.dk>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 1.0i
In-Reply-To: <44778.961423462@critter.freebsd.dk>; from phk@critter.freebsd.dk on Mon, Jun 19, 2000 at 04:04:22PM +0200
Sender: owner-freebsd-arch@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG


| >Hmm, yes, that wasn't quite what I meant. I was actually thinking
| >about purpose-made RNGs vs. custom-made (e.g. lava lamp + webcam), the
| >idea being that with the latter, a) you know it doesn't contain an
| >intentional steganographic fingerprint and b) you have complete
| >control over the RNG and can vary its output in unpredictable ways
| >(moving the camera, changing the background...) which hopefully defeat
| >recognition without affecting randomness.
| 
| Run your Intel built RNG through a cryptographic quality hash ?
| 
| If you frustrate the output by running it though MD5 and feed a few
| random bits from your keyboard interrupt in there as well ?
| 
| I wouldn't worry.

Not to worry.  The i82802 isn't meant to replace our current random number
generator, but rather as a source of entropy for The Bigger Picture (Yarrow).

We will still harvest entropy from various interrupts and other system
sources.

Which brings up another interesting point.  Mark, I believe there are still
some architectual issues with the Yarrow design.  Can you comment on this
status?

-- 
Dan Moschuk (TFreak!dan@freebsd.org)
"Don't get even -- get odd!"


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-arch" in the body of the message